0 23 0 



Claims 

1. A method, for use in a virus-free certificate authority (102), of generating a virus-free 
certificate (200) certifying that a file is virus-free comprising the steps of: 

• receiving (300) a virus-free certificate request for a file from a server (101) or a client 
(100) system, said virus-free certificate request comprising the file for which the virus- 
free certificate is requested; 

• determining (301) whether a virus-free certificate is integrated in the file; 
If no virus-free certificate is integrated in the file: 

• determining (305) whether the file is virus-free or not; 

if the file is declared virus-free by the virus-free certificate authority (102): 

• generating (313, 314) a virus-free certificate (200) comprising a file signature (207) 
for certifying that said file is declared virus-free by the virus-free certificate authority 
(102); 

• integrating (316) the generated virus-free certificate (200) in the file; 

• sending (316) back in response to the virus-free certificate request the file with the 
integrated virus-free certificate (200). 

2. The method according to tb o prcood i ng ^ claim^wherein the virus-free certificate 
request comprises: 

• a list of one or a plurality of anti-virus programs to execute on the file to determine 
whether the file is virus-free or not. 

3. The method according to any -o n e - of » t h o pr^ec e d io g claim^ wherein said file 
comprised in the virus-free certificate request comprises: 

• an integrated virus-free certificate. 
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4. The method according to qny one of tho pr o cod i ng > claim^comprising the further 
steps of: 

If the file comprises an integrated virus-free certificate: 

• determining (302, 303) whether the virus-free certificate integrated in the file has 
been previously generated by the virus-free certificate authority. 

If the virus-free certificate integrated in the file has been previously generated by the 
virus-free certificate authority: 

• updating (304) the virus-free certificate. \ 

If the virus-free certificate integrated in the file has not been previously generated by 
the virus-free certificate authority: 

• generating (313, 314) a new virus-free certificate. 

5. The method according to any ono of 4ho procod mg' clainr)^wherein said file further 
comprises: 

• a file header comprising: 

• a non encrypted file signature (501); 

• a file length (502); 

• a product name (503). 

6. The method according to - any ono of the pr e ced t ng claim^ wherein said step of 
integrating. (31 6) the virus-free certificate (200) in the file comprises the further steps of: 

• appending (506) the virus-free certificate to the file; 

• modifying *^=^e•file header, preferably: 

a- ^ 

• ^4he non encrypted file signature (501); 

• -thefile length (502); 

• -the product name (503), said product name comprising means for identifying the 
integrated virus-free certificate. 
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7. The method according to ony ono - oM he-pr e cedif>g' claimX^wherein said step of 
determining whether the file is virus-free or not comprises the further step of: 

• executing (301) one or a plurality of anti-virus programs on said file for detecting 
viruses. 

8. The method according to Qny - on© - of tho procod i ng claim^ wherein the virus-free 
certificate further comprises: 

• ^4he-list of the one or plurality of anti-virus programs (208) that have been executed 
on the file. 

-1- 

9. The method according to -a ny onc - of tho - prccoding * claim/^wherein the virus-free 
certificate (200) further comprises: 

• a file identification (201); 

• a virus-free certificate authority identification (202); 

• a public key (203) for decrypting the file signature; 

• a certificate signature (206) for authenticating the virus-free certificate. 

10. The method according to -any ono of the prooodrn g claim^ comprising the further 
steps (305) of: 

• identifying the server (101) or client (100) system where the file comprising the 
integrated virus-free certificate is stored; 

• updating the file with the integrated virus-free certificate. 

JL- 

11. The method according to any ono of tho proced i ng claim^^wherein the step of 
generating (303, 304) a file signature (207) comprises the further steps of: 
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• hashing the file to generate a file digest; 

• encrypting the file digest using a private key. 

12. A system, preferably a vinos-free certificate authority (102), for carrying out the 
method according to any one/of the preceding claims. 

13. A computer prog rapn comprising instructions for carrying out the method according 
to any one of claims/4 to 1 1 . 

14. A method, for use in a server (101) or client (100) system, of determining that a file 
is virus-free comprising the steps of: 

• determining (401) whether a virus-free certificate (200) is integrated within a file; 
if a virus-free certificate is integrated within the file: 

• authenticating (415) the virus-free certificate (200), said virus-free certificate 
comprising a certificate signature (206); 

• authenticating (407) the file, said virus-free certificate (200) comprising a file 
signature (207), said file signature certifying that said file has been declared virus-free 
by a virus-free certificate authority (102). 

15. The method according to the prGced i ng claim^herein said step of authenticating 
(407) the file comprises the further steps of: 

• decrypting the file signature (207) using a public key (203) comprised in the virus- 
free certificate (200). 

• hashing the file to generate a file digest; 

• comparing the decrypted file signature with the generated file digest. 



FR9 99 116rrNE 



^ 27 0 



16. The method according to ony ono o f claim^ 14 - to 1 - & wherein the step of 
authenticating the virus-free certificate comprises the further step of: 

• validating the virus-free certificate. 

17. The method according to - any ono o^ clainry^l- 4 to - >6 -wherein the step of validating 
the virus-free certificate comprises the further step of: 

• determining whether the virus-free certificate is valid or not; 
If the virus-free certificate is not valid: 

• requesting a virus-free certificate update or an updated virus-free certificate update 
to a virus-free certificate authority (102). 

18. The method according to any ono - of tho claim/ 144e-^ wherein the virus-free 
certificate (200) further comprises: 

• a file identification (201); 

• a virus-free certificate authority identification (202); 

• a public key (203) for decrypting the file signature; 

19. The method according to ony ono of - clainr|^14 to 10* wherein said file further 
comprises: 

• a file header comprising: 

• a non encrypted file signature (501) for signing the file; 

• a file length (502); 

• a product name (503), said product name comprising means for identifying the 
integrated virus-free certificate. 
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20. The method according to any one,, ofi clain]^ 14 -4e'-t9* wherein the step of 
deternnining (401) whether a virus-free certificate (200) is integrated within a file 
comprises the further step of: 

• determining whether a product name (503) within^ the* file header comprises means 
for identifying the integrated virus-free certificate or not. 

21. A system, preferably a se^er (101) or client (100) system, for carrying out the 
method according to any one>of claims 14 to 20. 

22. A computer program Comprising instructions for carrying out the method according 
to any one of claims 14 p 20. 
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